Last Modified: May 29, 2024
Affected Product(s):
F5OS (all modules)
Known Affected Versions:
F5OS-A 1.5.0, F5OS-A 1.5.1, F5OS-A 1.5.2
Fixed In:
F5OS-C 1.6.0, F5OS-A 1.7.0
Opened: Mar 23, 2023 Severity: 3-Major
When requesting a self-signed-cert, if the key-type is encrypted, then a passphrase is required. However, if no parameters are supplied, the key-type is then requested as a mandatory parameter, but won't ask for passphrase if encrypted type is selected.
An error indicates that the passphrase wasn't supplied, but it never was asked for in these conditions.
No parameters passed to the config: system aaa tls create-self-signed-cert.
Specify key-type as a parameter and then if encrypted, the passphrase will be requested.
The key-type is no longer a mandatory field and simply defaults to RSA. There is no conflict with not passing any parameters.